Re: [Sdn] new draft on SDN for DDoS mitigation
Ali Haider <ali.haider@seecs.edu.pk> Fri, 28 August 2015 09:58 UTC
Return-Path: <ali.haider@seecs.edu.pk>
X-Original-To: sdn@ietfa.amsl.com
Delivered-To: sdn@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE62C1A8880 for <sdn@ietfa.amsl.com>; Fri, 28 Aug 2015 02:58:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oTSY-ZXYKyzM for <sdn@ietfa.amsl.com>; Fri, 28 Aug 2015 02:58:30 -0700 (PDT)
Received: from mail-vk0-f44.google.com (mail-vk0-f44.google.com [209.85.213.44]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 931771A700E for <sdn@irtf.org>; Fri, 28 Aug 2015 02:58:30 -0700 (PDT)
Received: by vkbf67 with SMTP id f67so1645459vkb.0 for <sdn@irtf.org>; Fri, 28 Aug 2015 02:58:29 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=MgMz8EFMQeq8+3FnIasuX5mlEpgJKOkdT4KvQldE+BI=; b=bLtET0EGja0IjyTec4s40GFez4dEQ2o0D23T/rtCMWSy3CrplmS3HkkvpOnVDQn9Nr BKEzoXAcLcXC6Fi4otgRRQRl5rzztGs+rgpLH9GYLlW8XUyshyI94COYpdwj+A4e7mvP 9kNwLBiuO2WIxmhLcUU4iWiOIjgFo6w4hph2QiR1Cbyf1wU98GrPR3IOZc0mBnzdYKc1 UgV4WgB2jrK9xod/+48UQOfWtF7daIjer/7TUsAwYZAEgDVepH6S+caBWsFnvPdqVnbG 0Ni2c1mtMAf8OFglAV8iPrOK16yuHuuuxOab0VplRNanACA/xaDSByBmOoqVDVF0/Tkc rg4w==
X-Gm-Message-State: ALoCoQn7DbAxvFHLVK0ZMORvrRUSiPkRYG+rtWBaH264H5+gq49n1iSw0oy5l6AHYAApSjat/bg4
X-Received: by 10.52.227.105 with SMTP id rz9mr5979714vdc.54.1440755909748; Fri, 28 Aug 2015 02:58:29 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.31.66.140 with HTTP; Fri, 28 Aug 2015 02:58:00 -0700 (PDT)
In-Reply-To: <55CB473A.3010505@mti-systems.com>
References: <55CB473A.3010505@mti-systems.com>
From: Ali Haider <ali.haider@seecs.edu.pk>
Date: Fri, 28 Aug 2015 14:58:00 +0500
Message-ID: <CABBaWRqd0x=A9-=4ujZYeGmaAkGEAjU0qsKDtykomniZR_ir=Q@mail.gmail.com>
To: Wesley Eddy <wes@mti-systems.com>
Content-Type: multipart/alternative; boundary="089e01177237358484051e5c2018"
Archived-At: <http://mailarchive.ietf.org/arch/msg/sdn/rvqfaTr0j4q9XwibebTf4WZ4IX0>
Cc: "gclark mti-systems.com" <gclark@mti-systems.com>, sdn@irtf.org, Justin Dailey <Justin@mti-systems.com>
Subject: Re: [Sdn] new draft on SDN for DDoS mitigation
X-BeenThere: sdn@mail.ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: List to Discuss SDN Research Group in the IRTF <sdn.mail.ietf.org>
List-Unsubscribe: <https://mail.ietf.org/mailman/options/sdn>, <mailto:sdn-request@mail.ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sdn/>
List-Post: <mailto:sdn@mail.ietf.org>
List-Help: <mailto:sdn-request@mail.ietf.org?subject=help>
List-Subscribe: <https://mail.ietf.org/mailman/listinfo/sdn>, <mailto:sdn-request@mail.ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2015 09:58:34 -0000
This was an interesting read. It may be out of context for the filtering system (or it may not be) however, some kind of a weighted mechanism can be implemented in order to reduce the effect of temporary fluctuations or changes in the traffic. Since these changes do not last long, they must be ignored and filtering rules should not be installed for these. Otherwise, rules will be installed only to be removed moments later. Just a thought. On Wed, Aug 12, 2015 at 6:16 PM, Wesley Eddy <wes@mti-systems.com> wrote: > Hello, we wanted to make people aware of a new I-D that uses SDN (or > more specifically OpenFlow) as a tool to improve DDoS mitigation: > > https://datatracker.ietf.org/doc/draft-eddy-sdnrg-customer-filters/ > > The interesting part of this for SDNRG is probably the sub-controller > concept, which is how we allow OpenFlow to be used inter-domain (for > customers to control aspects of their ISP's network), and the three- > stage organization of flow tables. > > The content is fairly specific to DDoS, but could be extended and > generalized for other uses. > > Much of the other interdomain SDN work has the ISPs setting up virtual > networks for each customer, or slice-based constructions, which are not > required by this sub-controller approach. It may be of interest as > an alternative construction with its own set of advantages and > disadvantages in comparison to other interdomain SDN approaches. > > We're eager to hear your comments, criticisms, and questions. > > -- > Wes Eddy > MTI Systems > > _______________________________________________ > sdn mailing list > sdn@mail.ietf.org > https://mail.ietf.org/mailman/listinfo/sdn > -- *Syed Ali Haider*, Ph.D Assistant Professor School of Electrical Engineering and Computer Science National University of Sciences and Technology Sector H-12, Islamabad, Pakistan t: +92 51 90852109 e: ali.haider@seecs.edu.pk - - - - - - - - - - - - - - - - - - - - -
- [Sdn] new draft on SDN for DDoS mitigation Wesley Eddy
- Re: [Sdn] new draft on SDN for DDoS mitigation Linda Dunbar
- Re: [Sdn] new draft on SDN for DDoS mitigation Patrick Lismore
- Re: [Sdn] new draft on SDN for DDoS mitigation Wesley Eddy
- Re: [Sdn] new draft on SDN for DDoS mitigation King, Daniel
- Re: [Sdn] new draft on SDN for DDoS mitigation Ali Haider